Other Security Subjects

hello everybody....im an intermediate level administrator who used to administer the LAN in our school institution and i just want to know about certain methods of handling clients and monitoring them remotely in real time using Linux so i can shut t...

I've disabled PING access from outside to inside on my PIX 520, but I can't stop traceroutes...Below is the 3 lines I've used to stop PING access from outside to inside and allow PING & traceroutes from inside to outside: conduit permit icmp any any ...

Hi guys!I've created a custom TCP and UDP connection signature for port 113 (ident/auth service).I want to exclude some of my internal IP addresses from firing this because it's routinely and legitimately used (e.g. SMTP server).Unfortunately this se...

New users with Compaq PC's running Win2k SP1 and Cisco VPN ver 3.0. After loading VPN Client, and re-starting, the PC goes into a perpetual boot. After un-installing the client, the PC returns to normal operation. Any help would be greatly appre...

I have a pix 515 with 6 interfaces (three of which are currently used). The second and third interfaces use private addresses in the 192.168.1/24 and 192.168.0/24 address ranges. The servers behind the third interface have their IP's statically map...

Hi We have lost the password for "netrangr" , Is there any way to reset it to default / new value without entering the new value ?

hi folks, i have a problem deploying our PIX firewall. the following is our network topology:(internet Bbone)--(GSR)--(6009)--(Alteon L4 switch)--(4009)--(PIX535&WEB/Email Servers)[note: Alteon L4 switch is for load balance among servers.]As far as i...

I tried to exclude all events from one host to the internal network . The host address is also an internal ip address.RecordOfExcludedPattern * * 199.129.214.244 IN(ip address changed)But this is not working. I got some 3001 events today. We are runn...

We tried to install a NFuse Citrix on a DMZ web-server. We open ICA UDP and TCP ports (UDP 1604 and TCP 1494). Also the TCP 80 ports for HTTP traffic from DMZ back to inside server.We have been able to make it to work.Does anybody has a suggestion to...

Can anyone tell me why If I have a access list that only allows 80 and 443 to pass thru I can still see all other ports open when I run a penetration software such as Cyber Cop. Is there something that I need to add to keep these ports from Respondi...

I have been told that the new CSPM software could performing shunning without the Director software. The version i and f provide that shunning feature I was told. Can anyone confirm or deny this for release 2.3?

Hi folks,I've seen 2 tier firewalling getting very common these days, i.e customers implementing 2 firewalls, usually PIX for DMZ and Checkpoint as 2nd layer for Internal LAN.What addition benefits does this kind of design really bring? And what are ...

Is it recommended to have the Concentrator behind a firewall, or can it just be placed in parallel (like the documentation suggests).If behind say a PIX, what ports do i need open for this to work.Ta.

Anyone out there have a list of properties that needmodification on the exchange server to allow mail to come in over the internet. I have the pix stuff, but claim no knowledge of the exchange piece. Thanks

As I started working with netranger one of my first problem was, that the sensor is logging the attack signature, but not the answer of the attacked server. We are currently configured the sensor that it will create an iplog for most signatures at l...